Configuring rate limit for ICMP error messages
To avoid sending excessive ICMP error messages within a short period that might cause network congestion, you can limit the rate at which ICMP error messages are sent. A token bucket algorithm is used with one token representing one ICMP error message.
A token is placed in the bucket at intervals until the maximum number of tokens that the bucket can hold is reached.
A token is removed from the bucket when an ICMP error message is sent. When the bucket is empty, ICMP error messages are not sent until a new token is placed in the bucket.
To configure rate limit for ICMP error messages:
Step | Command | Remarks |
---|---|---|
1. Enter system view. | system-view | N/A |
2. Set the bucket size and the interval for tokens to arrive in the bucket for ICMP error messages. | ip icmp error-interval interval [ bucketsize ] | By default, the bucket allows a maximum of 10 tokens. A token is placed in the bucket at an interval of 100 milliseconds. To disable the ICMP rate limit, set the interval to 0 milliseconds. |